2025-06-09 12:26:28
INCIBE
PUBLISHED
Incorrect authorization vulnerability in TCMANs GIM v11. This vulnerability allows an unprivileged attacker to create a user and assign it many privileges by sending a POST request to /PC/frmGestionUser.aspx/updateUser.